Slashdot Mirror

← Back to Stories (view on slashdot.org)

DJB Announces 44 Security Holes In *nix Software

Posted by timothy on from the extra-credit dept.

generationxyu writes "D. J. Bernstein, better known as DJB, has announced the discovery of 44 security holes that were found by students in his course MCS 494: Unix Security Holes this fall at the University of Illinois at Chicago. Vulnerable programs of note include: CUPS, NASM, mpg123, MPlayer, xine-lib, and numerous others. Copies of the notification emails are here. The homework for the course was to find and exploit 10 previously undiscovered security holes in currently deployed Unix software. In a class of 25, 44 security holes seems a bit low. Most of the class failed. I was credited with bsb2ppm (actually libbsb) and jpegtoavi. After 300 hours of work and an A average on the exams, I expect to fail the course."

36 of 983 comments (clear)

  1. All you need is one more hole... by Nom+du+Keyboard · · Score: 5, Funny
    After 300 hours of work and an A average on the exams, I expect to fail the course.

    All you need to do is find one more hole, this one in the campus records department, and exploit it for improving your grade. If you have an "A" average otherwise, another "A" will look right in place. It's the "D" average people suddenly getting "A"s and "B"s that draw suspicion.

    --
    "It's the height of ridiculousness to say for those 9 lines you get hundreds of millions."
  2. and the moral is: by pchan- · · Score: 3, Funny

    After 300 hours of work and an A average on the exams, I expect to fail the course.

    but we've all learned a valuable lesson: don't take a class taught by DJB

  3. How to pass this class (females only) by Anonymous Coward · · Score: 1, Funny

    Let your prof 'secure' your hole, if you know what I mean.

  4. Hmm... by excaliber19 · · Score: 4, Funny

    Perhaps Microsoft should try this strategy. Im sure the kids would thoroughly enjoy that assignment! They'd have bugs coming out the wazoo! A's for everyone!

  5. Where's the gumpf? by caluml · · Score: 4, Funny

    Hey! I've found remote roots in OpenSSH, Apache, and Bind. If you run the file below, you can get root.

    [ Part 2, Text/PLAIN (charset: unknown-8bit) 95 lines. ]
    [ Unable to print this part. ]

    --
    Get your own free personal location tracker
  6. But you have already found 10 bugs!!! by jgbustos · · Score: 5, Funny

    Why take for granted that the number of bugs to be found was expressed in base-10? Why not base-2?

    1. Re:But you have already found 10 bugs!!! by addaon · · Score: 3, Funny

      base-10 is base-2. Or did you mean base-1010?

      --

      I've had this sig for three days.
  7. Re:Don't just take this lying down, IMO by Saint+Stephen · · Score: 5, Funny

    My algorithms class was like this. I aced every test but didn't complete the Travelling Salesman program successfully. I got an "incomplete" and had to come to summer school. Boy was I mad at the time but I see now why they did it. All or nothing.

  8. Re:Don't just take this lying down, IMO by bani · · Score: 3, Funny

    you really think djb cares? given his well known history of being supreme asshole of the known universe?

    fwiw this was obviously djb trying to get his students to dig up ammo for him to go on another one of his public penis-waving tantrums, acting all smug and high and mighty again (oh lookit me i wrote qmail and its all uber secure, and wooo lookit all the MISERABLE LAMERS WRITING SHIT CODE!!1!!111!)

  9. Re:Most people will pass by wk633 · · Score: 3, Funny

    D.L. Parnas once taught a 300 level software engineering class at the University of Victoria.

    Grading used the 'high tide' method. That is, better score in one area of the course (exam, project, assignments) could override a poor score in another area. All instructor's judgement.

    One student I knew got a C+ and discovered that he had roughly the same scores in each area as another student who got an A. That is, guy I knew had a poor exam, but awesome project. Someone else had nearly identical exam scores, and nearly the same (A) project.

    So guy-I-knew approached Parnas, and asked why.

    "Becuase I don't like you".

    And that was the end of it.

  10. Re:ah, buffer overflows... by symbolic · · Score: 4, Funny

    If you can always remember to wipe your butt, you can always remembers to watch your buffer lengths.

    Well, there's the problem!

  11. 10 types of people ... by fuufump · · Score: 3, Funny

    The homework for the course was to find and exploit 10 previously undiscovered security holes in currently deployed Unix software.

    "There are only 10 types of people in the world: Those who understand binary, and those who don't"

  12. Re:Misleading Title by Cuthalion · · Score: 3, Funny

    Have you actually tried removing notepad?

    Windows tries pretty hard to keep you from doing so.

    --
    Trees can't go dancing
    So do them a big favor
    Pretend dancing stinks!
  13. only need one exploit by abaybas · · Score: 1, Funny

    No need to find 10, just find one and then hack into the prof's grading machine. there.

  14. Re:Agreed, many profs are abusive by commodoresloat · · Score: 2, Funny
    Its no coincidence many sleep with their students, its often the only way they can get laid.

    This is false.

    We sleep with our students because they're just so damn sexy in their cute little spring wardrobes.

    (I'm joking, I'm joking; stop slapping me with that trout already!)

  15. How can you fail with open source?? by wfberg · · Score: 2, Funny

    1) Create sourceforge project page under assumed name.
    2) Post forks of programs with extra bugs inserted.
    3) Profit!

    You see - there's a number 2 step, thanks to open source.

    --
    SCO employee? Check out the bounty
  16. Re:Don't just take this lying down, IMO by Chandon+Seldon · · Score: 2, Funny

    The traveling salesman problem is easy.

    For 1 city, you're already done.
    For 2 cities, you start in one and go to the other.
    For three cities, you find the two cities furthest from eachother, travel from one of them to the middle city and then to the far city.

    Obviously it's no more complex for (any-value-of-N) cities.

    --
    -- The act of censorship is always worse than whatever is being censored. Always.
  17. Re:Agreed, many profs are abusive by corbettw · · Score: 2, Funny

    We sleep with our students because they're just so damn sexy in their cute little spring wardrobes.

    The scary thing is, you're a kindergarten teacher!

    --
    God invented whiskey so the Irish would not rule the world.
  18. Duh! by Quixote · · Score: 2, Funny

    I'd fail these students too. Clearly they hadn't heard of DJB and his attitude to sign up for his course. With such a gaping hole in their knowledge, they deserve to get an F.

  19. Re:If the majority of the class failed... by mph · · Score: 2, Funny
    If the majority of the class failed, then the professor failed YOU.
    You forgot the "In Soviet Russia" part.
  20. Re:Don't just take this lying down, IMO by he-sk · · Score: 2, Funny

    Come to Germany!

    Wait, to late.

    --
    Free Manning, jail Obama.
  21. Re:Don't just take this lying down, IMO by myowntrueself · · Score: 3, Funny

    and my entire class was failed because noone could write a program to check whether another, arbitrary program, would eventually finish execution...

    --
    In the free world the media isn't government run; the government is media run.
  22. Re:Misleading "Exploits" (Was Re:Misleading Title) by YrWrstNtmr · · Score: 2, Funny
    1. Somebody emails you a file
    2 You, apparently without ever looking at it, run that file through something like jpeg2avi or nasm
    3 Gasp! You've been 0wned!

    Which is precisely how many Win boxes get compromised.

  23. Re:Misleading Title by Tanktalus · · Score: 2, Funny

    Um, because it's what most Windows users spend most of their time with? :-)

  24. Re:Don't just take this lying down, IMO by Anonymous Coward · · Score: 1, Funny

    I don't understand why Professor Gödel assigned that problem. I'm sure Professor Turing wouldn't have.

  25. Re:Good idea? by squidfood · · Score: 3, Funny
    We all already failed the course :-)

    Of course you failed. Obviously, half of you were supposed to rapidly deploy buggy software via sourceforge while the other half "fixed" the problems. Or don't you know more about Dilbert than us professionals? :)

  26. Re:Don't just take this lying down, IMO by Tanktalus · · Score: 2, Funny
    #include <sys/types.h>
    #include <signal.h>
    #include <stdio.h>

    int main(int argc, char** argv)
    {
    pid_t p = atol(argv[1]);
    kill(p, SIGKILL);
    printf("Process %d ran in 0 time.\n", p);

    return 0;
    }
    Or something like that.
  27. Re:Misleading Title by Chris+Burke · · Score: 4, Funny

    Ahh, this is such stuff that pointless flamewars are made on.

    No it isn't, you moron!

    --

    The enemies of Democracy are
  28. Re:Good luck with that one.... by Schnarl · · Score: 2, Funny

    All other classes are inferior and a waste of resources compared to DJB's class! Oh by the way, his class will only be held in the western area of the quad in a specially built room with circular windows for optimal lighting.

  29. At least the assignment wasn't.... by mysidia · · Score: 2, Funny

    For each student to find two new security bugs in Qmail.

  30. Re:I can see it now... by Fulcrum+of+Evil · · Score: 2, Funny

    I wouldn't say that to DJB. He'd probably pull out 20 or 30.

    I doubt it - sendmail doesn't count.

    --
    "We returned the General to El Salvador, or maybe Guatemala, it's difficult to tell from 10,000 feet"
  31. Re:Agreed, many profs are abusive by Anonymous Coward · · Score: 1, Funny

    And you have never seen a female use tears to play on someones emotions and get their own way?

    I was once naiive like you.

    And I was once bitter like you.

  32. Re:It's just an assignment - Did you even go to un by SetupWeasel · · Score: 2, Funny

    Today is a red-letter day!

    No matter how incidentally or innaccurately, I was favorably compaired to Neils Bohr.

  33. JUST for future reference by veg_all · · Score: 2, Funny

    No- I don't think djb cares per say

    Not to be an asshole, but it's per se

    --
    grammar-lesson free since 1999. (rescinded - 2005)
  34. Re:Good idea? by russotto · · Score: 2, Funny

    If you'd been really clever, you'd have written some software -- preferably a whole suite of trivial related items, posted it somewhere, then "found" all the holes you put in them :-)

  35. Re:Varying levels of seriousness... by hey · · Score: 2, Funny

    Oh great, I'm looking forward to that.
    ***!!!Error you are using the standard libary!!!!***
    Switch to the much better Win32 API or we'll tell your boss you are using something portable.